https://github.com/dependabot/demo

🤖 Fork me to try out Dependabot
https://github.com/dependabot/demo

Last synced: about 1 year ago
JSON representation

🤖 Fork me to try out Dependabot

• Host: GitHub
• URL: https://github.com/dependabot/demo
• Owner: dependabot
• Created: 2019-02-21T17:47:49.000Z (over 7 years ago)
• Default Branch: main
• Last Pushed: 2024-08-09T18:54:54.000Z (almost 2 years ago)
• Last Synced: 2025-04-14T00:57:35.698Z (about 1 year ago)
• Language: Ruby
• Homepage:
• Size: 26.4 KB
• Stars: 204
• Watchers: 23
• Forks: 2,776
• Open Issues: 10
• Metadata Files:
  • Readme: README.md

Awesome Lists containing this project

README

          


    

        

        

        

    



## Dependabot Demo Repository

This repo contains some projects with outdated dependencies. Fork it to try out

Dependabot :dependabot:!

### Enabling Security Updates

- In your fork, click the **Settings** tab

- In the left hand side navigation, click **Code security and analysis**

- Enable **Dependabot security updates** or **Grouped security updates**

- Dependabot will now start creating PRs for detected security vulnerabilities

- Go into the **Security** tab and click **Dependabot** in the left hand side navigation to see what Dependabot is working on



After about 5 minutes you should see some PRs open. Merge them and the Securty Alerts will close 🎉

### Enabling Version Updates

This demo includes a `dependabot.yml` which configures [Version Updates](https://docs.github.com/github/administering-a-repository/keeping-your-dependencies-updated-automatically), but forks don't automatically start with Dependabot enabled.

The enable Dependabot on your fork:

- Click the **Insights** tab

- In the left hand side navigation, click **Dependency Graph**

- Click on the **Dependabot** tab

- Click on the **Enable Dependabot** button

- After a moment, refresh the page and you should see Dependabot hard at work



After a few minutes, you should get some more PRs!